356f55a8124423f652954d47a2a6119da3d72f0764f87e69ef3a6b4f79f23aa2 | Triage

Sharing

General

Target

NEAS.9fe930166257d397fbb1edff4ccf0c80.exe
Size

483KB
Sample

231103-rzwcgsfa89
MD5

9fe930166257d397fbb1edff4ccf0c80
SHA1

afce39e3c6fe8e279b5824ce574da2e481d5aaec
SHA256

356f55a8124423f652954d47a2a6119da3d72f0764f87e69ef3a6b4f79f23aa2
SHA512

9d8df8a1792e195efc206708b26fac1ba33bbe1cbb7226024a3740b4faaa11c1409034385d91907f8ece15030ebdb2c8b8daef7f59259b016029035c4197b652
SSDEEP

6144:3HyF6K6Gsof5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDJk4sNnVCj:3W6rkFHRFbet4OnV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.9fe930166257d397fbb1edff4ccf0c80.exe
- Size
  
  483KB
- MD5
  
  9fe930166257d397fbb1edff4ccf0c80
- SHA1
  
  afce39e3c6fe8e279b5824ce574da2e481d5aaec
- SHA256
  
  356f55a8124423f652954d47a2a6119da3d72f0764f87e69ef3a6b4f79f23aa2
- SHA512
  
  9d8df8a1792e195efc206708b26fac1ba33bbe1cbb7226024a3740b4faaa11c1409034385d91907f8ece15030ebdb2c8b8daef7f59259b016029035c4197b652
- SSDEEP
  
  6144:3HyF6K6Gsof5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDJk4sNnVCj:3W6rkFHRFbet4OnV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2